IS-CIS /ConInSe : Consensual innate sequential tokenised consent
ConInnSeq is an innovative solution designed to empower users and ensure privacy-centric data management. Designed upon Event-Driven Architecture (EDA) and Domain-Driven Design (DDD) principles, the framework offers a robust and scalable approach to managing consent in a distributed and asynchronous manner. By adopting an event-driven approach, the framework enables loose coupling between components, ensuring flexibility and scalability as the system evolves while, at the same time, concurrent consent actions can scale effectively in a responsive and efficient manner. Consent-related actions, such as granting or revoking consent, are captured as domain-centric events within the system, reflecting the key entities and interactions involved in consent management.
By placing individuals at the centre of the consent management process, the architecture embraces a user-centric design philosophy. With tokenization, users’ consent preferences are represented by unique digital tokens, which are securely stored and managed within the framework. This approach empowers users to granularly manage their data sharing choices while maintaining privacy and control. To ensure reliability and trust-ability, the framework leverages Distributed Ledger Technologies (DLT). The immutable and decentralized nature of DLT ensures that consent-related events and transactions are securely recorded on a shared ledger, while, due to the nature of the cryptographic techniques that embody these technologies, transparency, accountability, and auditability are enhanced within the consent lifecycle, protecting the integrity and confidentiality on the overall process. By combining the strengths of Event-Driven Architecture, Domain-Driven Design, and DLT technologies, ConInSe offers a robust and user-centric solution, providing the foundation for privacy-focused consent management while leveraging asynchrony and DLT to enhance trust, reliability, and scalability in the management of individuals’ consent preferences and data sharing choices.
- Motivation for the project: Definition of an Open-Source Reference Architecture for Consent Management agnostic of the Use Case it is meant for. Such a platform aims to ease the design and development of Consent related use cases by servicing an abstract ground-proven scenario that enables elemental operations while allowing extension.
- Generic use case description: Atomic Data (AD) is generated and maintained by Data Holders (DH). AD is property of Data Owners (DO). AD is requested by Data Seekers (DS). DH can track permission requests from DO to provide access to AD from DS utilising a tokenised form of consent. The continuous work with the different departments of UST has provided valuable feedback that has helped getting the definition of our use case on a proper track.
- Essential functionalities: Human-centric solution based on consensual, innate, and sequential data sharing' Context agnostic framework; A reference Architecture to fulfil Common Building Blocks for standard Consent Operations; Cryptographic backed audit trail; An example open-source implementation, to be used as is or adapted by 3rd parties.
- How these functionalities can be integrated within the software ecosystem: As an Open-Source Architecture Framework, it is meant to provide the technical requirements, standards, and implementation patterns to deliver such a Tokenised Consent Solution under a generic scenario, these standards apply also to how a CI/CD should be maintained to service its requirements.
- Gap being addressed: We service a common set of building blocks that work as a “connector” between any interested actor, providing a standard interoperable framework where anyone can implement their specific Use Cases. As an Event Driven Designed Solution it reduces the gap to build integrations for business workflows.
- Expected benefits achieved with the novel technology building blocks: An additional toolkit provided to the ecosystem to handle consent and help improving Data Management while sticking to the highest standards of privacy available. As an Open-Source solution, it has the potential to get enriched by the developer's community Audit and Enhancement capabilities.
- Potential demonstration scenario: Pharma clinical trials • Health records for insurance • Talent management in UST HR (Human Resources).
Repositories:
GitHub: https://github.com/NGI-TRUSTCHAIN/IS-CIS
Currently open to the TrustChain community only. Reach out if you need access.
Team
Daniel Field
Daniel Field is a global blockchain practice leader with 25 years of experience in research, innovation, and market analyst areas.
Joaquín Precioso Sánchez
Joaquín Precioso Sánchez is the Blockchain Solutions Architect with 20 years of experience in software sector.
Astor Ayllón Lázaro
Astor Ayllón Lázaro is an Enterprise & Solutions Architect with 20 years of experience in the IT (Information Technology) sector.
Entity
Keen Software S.L.U. (UST Global)
UST Global, is a provider of digital technology and transformation, information technology and services, headquartered in Aliso Viejo, California, United States.
Website: www.ust.com/es